How can I add JWT automatically after login?

I have a cruel doubt.

I’m running the code below:

package main

import (


func login(c echo.Context) error {
	username := c.FormValue("username")
	password := c.FormValue("password")

	if username == "jon" && password == "shhh!" {
		// Create token
		token := jwt.New(jwt.SigningMethodHS256)

		// Set claims
		claims := token.Claims.(jwt.MapClaims)
		claims["name"] = "Jon Snow"
		claims["admin"] = true
		claims["exp"] = time.Now().Add(time.Hour * 72).Unix()

		// Generate encoded token and send it as response.
		t, err := token.SignedString([]byte("secret"))
		if err != nil {
			return err
		return c.JSON(http.StatusOK, map[string]string{
			"token": t,

	return echo.ErrUnauthorized

func accessible(c echo.Context) error {
	return c.String(http.StatusOK, "Accessible")

func restricted(c echo.Context) error {
	user := c.Get("user").(*jwt.Token)
	claims := user.Claims.(jwt.MapClaims)
	name := claims["name"].(string)
	return c.String(http.StatusOK, "Welcome "+name+"!")

func main() {
	e := echo.New()

	// Middleware

	// Login route
	e.POST("/login", login)

	// Unauthenticated route
	e.GET("/", accessible)

	// Restricted group
	r := e.Group("/restricted")
	r.GET("", restricted)



Everything is going well! But how do I add the token in the header, so when the user logs it to navigate between routes /restricted normally?

At the moment I can navigate the route /restricted if I add a header Authorization in POSTMAN for example.

But I want it to be automatic once the user logs in. Grateful!

Thanks guys.

If you’re talking about sending the token to a regular web browser, you’ll need to send it as a cookie. I’ve got code you can look at or use.


This topic was automatically closed 90 days after the last reply. New replies are no longer allowed.